Introducing MDaemon 19 – with Updates for Security, Reporting, & Webmail

This week, we released version 19 of the MDaemon Email Server, with new features that benefit administrators and end users. The following is a summary of key improvements for email security and productivity. You can view the complete list of new features and updates in the MDaemon release notes.

New MDaemon Email Server Features for Administrators

One of the first things administrators will notice is that the behavior of the “Start MDaemon” Start menu shortcut has changed. When clicked, you’ll now be taken to MDaemon Remote Administration via your browser. If you’d like to launch the MDaemon Email Server console directly, you can use the “Open MDaemon Configuration Session” shortcut, as shown here:MDaemon Email Server Start Menu

Enhanced Integration with Third-Party Plugins

MDaemon’s XML-API has been expanded to include additional capabilities. Folders and their contents can be created, deleted, renamed, and moved using the API. Developers can use these expanded features to display or manipulate the content of user mailboxes.

“External Message” Warning

A new “External Sender” Content Filter condition has been added, along with a new “Add a warning to the top of the message” action. This allows MDaemon administrators to create a rule that will add a custom warning to the top of all email messages originating from external sources – providing extra protection against phishing attempts by alerting users to treat these messages with extra care.

External Message Warning in MDaemon Email Server
External Message Warning

Extnernal Sender Warning

Support for Separate SSL Certificates for Each Host/Domain

MDaemon supports TLS Server Name Indication (SNI). This allows domains and host names to have their own assigned SSL/TLS certificate, rather than having to share a single certificate.

MDaemon - Support for multiple SSL certificates

New Authentication Failure & Frozen Account Reports

MDaemon’s Dynamic Screening feature includes the option to send authentication failure and frozen account reports to end users. When a given number of authentication failures has been reached, or when an account has been frozen, the user is notified so that corrective action can be taken.

MDaemon Authentication Failure Reports
MDaemon Authentication Failure Reports

New MDaemon Email Server Features for End Users

MDaemon Webmail – “All Unread” and “All Flagged” Saved Searches

When logging in for the first time, MDaemon Webmail users will receive a prompt asking if they would like to create an “All Unread” and “All Flagged” saved search for convenient, one-click access to unread or important email messages.

MDaemon Webmail Saved Search - All Unread All Flagged

MDaemon Webmail – Expired Session Indicator

MDaemon Webmail will display (EXPIRED) on the browser tab when a user’s session has expired. This allows users who have multiple browser tabs open to be notified when they have been logged out of MDaemon Webmail without having to switch tabs.

MDaemon Webmail Expired Session Notification
MDaemon Webmail Expired Session Notification

Other MDaemon Email Server Improvements Include:

  • Autodiscover support has been expanded to accommodate a wider variety of connecting email clients (including eM Client, Thunderbird, Outlook, and others). The service can also now be configured to pass a custom host name to the connecting client on a per-service basis (for example: administrators can configure ActiveSync to connect to activesync.domain.com and IMAP to connect to imap.domain.com, etc.).
  • The option “Only send antivirus update notification on failure” is now enabled by default, and when updating to MDaemon 19, it will be enabled the first time MDaemon starts up.
  • MDaemon Remote Administration New Features:
    • Added license management options to the Registration page.
    • Added AntiVirus Updater and Scheduler dialog
    • Added queue counts, process message counts, other process counts, session statistics, and more process states to the Status page.
  • The MDaemon AntiVirus configuration screen has been updated. Both antivirus engines (Cyren and ClamAV) can now be configured from a single screen.
  • When ActiveSync is disabled for a domain, administrators will receive a pop-up asking if they would like to revoke ActiveSync access for users of the selected domain. This makes it easier to revoke access and reduces the usage of ActiveSync licenses.
  • The STARTTLS White List now takes precedence over the STARTTLS Required List and the “SMTP server requires STARTTLS on MSA port” option.
  • New options have been added to Security | Spam Filter | Spam Honeypots and Security | Security Settings | Screening | SMTP Screen to enable/disable the Dynamic Screening notification when an IP is blocked.

These are the main highlights. For a complete list of new features & enhancements in the latest MDaemon Email Server, please see the MDaemon release notes. If you’re not currently using MDaemon and would like to learn more about how MDaemon can save your company time and money, click here to download your free trial!

Spread the love
  •  
  •  
  •  
  •  
  •  
  •  

Manage Employee Overtime with New Email Feature

Companies around the world are faced with the need to manage email access after hours to reduce overtime pay and promote a stronger work/life balance for their employees. MDaemon makes this goal attainable using its Do Not Disturb feature. Do Not Disturb allows administrators to designate a time during which selected users are not allowed to check their email. During the Do Not Disturb period, accounts can still receive email on the mail server, but users cannot send or check for mail using SMTP, IMAP, POP, WorldClient or ActiveSync.

In MDaemon, you can access the Do Not Disturb feature via the Group Manager screen under the Accounts menu. Follow these steps to configure Do Not Disturb.

  1. Select Accounts.
  2. Select Groups & Templates.
  3. Select Group Manager.
  4. Select New Group or click on an existing group to select it.
    Click on New Group to create a user group in MDaemonEnter a Group Name and Description for your new group.Group name and description - MDaemon user group
  5. Click on Add or remove accounts from the selected group.
    Adding Accounts to a Group in MDaemon Messaging Server
  6. Check the box for each account you wish to add to this group, and then click OK.
    Adding Accounts to a Group in MDaemon Email Server
  7. Select the group name under the Group Manager list.
    Select the Group in the Group Manager List
  8. Check Enable Do Not Disturb.
    Do Not Disturb Checkbox - MDaemon Groups & Templates
  9. Click on Define Do Not Disturb Schedule to configure when you would like this feature to take effect.
    Defining a do-not-disturb schedule for selected accounts in MDaemon
  10. Select your desired Do-Not-Disturb schedule, including dates, times, and days of the week, and then click OK.
    Do not Disturb schedule
  11. Click OK to close the Groups & Templates window.

Once these settings are enabled, users who try to access or send email during Do Not Disturb hours will be denied access.

The following video demonstrates how to configure Do Not Disturb.

Do Not Disturb gives administrators and management teams greater control over who has after-hours access to the email system. This feature was added in MDaemon 15.5. If you’re using an older version of MDaemon and would like to upgrade, then visit our Downloads page to download the latest version of MDaemon.

Spread the love
  •  
  •  
  •  
  •  
  •  
  •  

Thwart Hackers with Strong Password Policies

For spammers, the barriers to entry are very low and the potential payoffs are very high relative to the small amounts of effort required to send out lots of spam. Spammers typically look for the “low hanging fruit” of an email system, such as mail servers that are not configured to prevent relaying, or accounts with weak passwords. If a hacker manages to guess an account’s password, he can use that account to send out large amounts of unsolicited spam email messages. This can result in your server winding up on a blacklist. Additionally, if large amounts of spam are sent out before the issue is corrected, your business can suffer lost trust and a reduction in revenue.

MDaemon’s Account Hijack Detection feature can be used to disable the account once a specified number of messages have been sent from an authenticated session within a given period of time. But it would be better to not even let a hacker get that far. Having strong passwords that are difficult to guess would help prevent an account from being hijacked in the first place.

Today, we focus on the issue of weak passwords and how to thwart hackers by implementing strong password policies. These settings are located in MDaemon under the Accounts | Account Settings configuration screen. In today’s video tutorial, we demonstrate how to require strong passwords, how to force accounts with a weak password to change their password, and how to send a Weak Passwords report to a designated email address.

Email is one of the most valuable intellectual property assets a company can have. Protect your email by enacting strong security and password policies & keep the hackers out.

Click here to learn more about MDaemon and why many small-to-medium businesses have migrated to it from Microsoft Exchange Server, or click here to download your free trial!

Spread the love
  •  
  •  
  •  
  •  
  •  
  •  

MDaemon 15.5.3 is Now Available

MDaemon mail server software update available

MDaemon 15.5.3 has been released. With this latest release, we’ve added support for one of the most popularly-requested features – the ability for the content filter to check for restricted files inside of RAR and ZIP attachments.

Click here to read the complete release notes.

Click here to download the latest MDaemon.

If you are upgrading from an older version of MDaemon, here are some helpful tips to ensure that your upgrade goes smoothly.

If you need assistance, please feel free to leave us a comment, or click here to contact our support staff.

Spread the love
  •  
  •  
  •  
  •  
  •  
  •  

MDaemon Update Available

MDaemon 15.5.2 is now available. This is a minor update that includes the following two changes:

  • Updates to MDaemon’s server-side encryption using Open PGP: –pgpx mode will now bounce if no key on key-ring found for encryption and log a failure message if encryption cannot be performed.
  • Info about ActiveSync port requirements has been moved from a popup to the ActiveSync server configuration dialog.

There are also various other fixes & improvements. These updates & improvements are listed in the latest MDaemon release notes, which you can read here.

Click here to download the latest release of MDaemon.

If you have questions, feel free to leave a comment, or email training@altn.com.

Spread the love
  •  
  •  
  •  
  •  
  •  
  •  

Webinar Recording Available – MDaemon 15 New Features

We recently released MDaemon 15, with new features such as IPv6 support, email encryption, improved account hijack detection, 64-bit support, dynamic screening improvements, and much more. To learn more about what’s new, watch the following brief webinar.

Spread the love
  •  
  •  
  •  
  •  
  •  
  •